Legal claims defining the scope of protection, as filed with the USPTO.
1. A method comprising: identifying a plurality of shared cloud accounts of a cloud that are created for an entity, wherein a number of the plurality of shared cloud accounts is less than a number of a plurality of users of the entity of the cloud; determining that one of the plurality of users is authorized to use the plurality of shared cloud accounts in response to a determination that identity information of the user is valid; receiving a request from the user to access the cloud; determining, by a server computing system residing outside of the cloud, whether one of the plurality of shared cloud accounts is available to be assigned to the user; and adding the request to a queue based on a determination that none of the plurality of shared cloud accounts is available and assigning the one of the plurality of cloud accounts to the user based on a determination that one of the plurality of shared cloud accounts is available.
2. The method of claim 1 , wherein the entity is an Enterprise, and the server computing system resides in an Enterprise network.
3. The method of claim 1 , wherein identifying a plurality of shared cloud accounts associated with a cloud comprises: determining a user load of the plurality of users of the entity accessing the cloud, wherein the number of plurality of shared cloud accounts is based on the user load.
4. The method of claim 1 , wherein assigning the one of the plurality of shared cloud accounts to the user is based on a round-robin algorithm.
5. The method of claim 1 , further comprising: receiving a request from a cloud to validate the identity of the user that is assigned to the shared cloud account in response to assigning the one of the plurality of shared cloud accounts to the user; verifying the identity of the user is valid; and providing an identity token indicating the identity of the user to the cloud.
6. The method of claim 5 , wherein the identity token is at least one of a Security Assertion Markup Language assertion or an OpenID identifier.
7. A system comprising: a memory; and a processor coupled with the memory to: identify a plurality of shared cloud accounts of a cloud that are created for an entity, wherein a number of the plurality of shared cloud accounts is less than a number of a plurality of users of the entity of the cloud; determine that one of the plurality of users is authorized to use the plurality of shared cloud accounts in response to a determination that identity information of the user is valid; receive a request from the user to access the cloud; determine whether one of the plurality of shared cloud accounts is available to be assigned to the user; and add the request to a queue based on a determination that none of the plurality of shared cloud accounts is available and assigning the one of the plurality of cloud accounts to the user based on a determination that one of the plurality of shared cloud accounts is available.
8. The system of claim 7 , wherein the entity is an Enterprise, and the system resides in an Enterprise network.
9. The system of claim 7 , wherein identifying a plurality of shared cloud accounts associated with a cloud comprises: determining a user load of the plurality of users of the entity accessing the cloud, wherein the number of plurality of shared cloud accounts is based on the user load.
10. The system of claim 7 , wherein assigning the one of the plurality of shared cloud accounts to the user is based on a round-robin algorithm.
11. The system of claim 7 , wherein the processor is further to: receive a request from a cloud to validate the identity of the user that is assigned to the shared cloud account in response to assigning the one of the plurality of shared cloud accounts to the user; verify the identity of the user is valid; and provide an identity token indicating the identity of the user to the cloud.
12. The system of claim 11 , wherein the identity token is at least one of a Security Assertion Markup Language assertion or an OpenID identifier.
13. A non-transitory computer readable storage medium including instructions that, when executed by a processor, cause the processor to perform a method comprising: identifying a plurality of shared cloud accounts of a cloud that are created for an entity, wherein a number of the plurality of shared cloud accounts is less than a number of a plurality of users of the entity of the cloud; determining that one of the plurality of users is authorized to use the plurality of shared cloud accounts in response to a determination that identity information of the user is valid; receiving a request from the user to access the cloud; determining, by the processor residing outside of the cloud, whether one of the plurality of shared cloud accounts is available to be assigned to the user; and adding the request to a queue based on a determination that none of the plurality of shared cloud accounts is available and assigning the one of the plurality of cloud accounts to the user based on a determination that one of the plurality of shared cloud accounts is available.
14. The non-transitory computer readable storage medium of claim 13 , wherein the entity is an Enterprise, and the server computing system resides in an Enterprise network.
15. The non-transitory computer readable storage medium of claim 13 , wherein identifying a plurality of shared cloud accounts associated with a cloud comprises: determining a user load of the plurality of users of the entity accessing the cloud, wherein the number of plurality of shared cloud accounts is based on the user load.
16. The non-transitory computer readable storage medium of claim 13 , wherein assigning the one of the plurality of shared cloud accounts to the user is based on a round-robin algorithm.
17. The non-transitory computer readable storage medium of claim 13 , the method further comprising: receiving a request from a cloud to validate the identity of the user that is assigned to the shared cloud account in response to assigning the one of the plurality of shared cloud accounts to the user; verifying the identity of the user is valid; and providing an identity token indicating the identity of the user to the cloud.
18. The non-transitory computer readable storage medium of claim 17 , wherein the identity token is at least one of a Security Assertion Markup Language assertion or an OpenID identifier.
Unknown
June 24, 2014
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.